Dissecting Winlocker – ransomware goes centralized

2012-11-01

Aditya K. Sood

Michigan State University, USA

Richard J. Enbody

Michigan State University, USA

Rohit Bansal

Independent security researcher, USA
Editor: Helen Martin

Abstract

Winlocker, aka Gimemo, has revolutionized the design of ransomware - all the infected machines are controlled centrally using two C&C panels. Aditya Sood and colleagues discuss the design and behaviour of the Winlocker ransomware.

Copyright © 2012 Virus Bulletin

The full article is available to registered users. Click here for free registration or, if you already are a registered user, login to access the full article.

Quick Links

Poll
Do current laws offer enough protection for ethical ('white-hat') hackers?
Yes, the current laws are fine
No, they prevent responsible disclosure of vulnerabilities
The current laws are too lax, we need to be stricter on hacking
I don't know
Leave a comment
View 4 comments

Cybersecurity for Chemical Industry

Virus Bulletin
In this month's magazine:
  • VBSpam comparative review March 2013
  • VB100 comparative review on SUSE Linux Enterprise Server 11
  • Java security in the era of BYOD
  • Ogee whiz
  • A deeper look into the ZeroAccess clickbot
  • Pushdo's new second generation
  • Shellcoding ARM: part 3
  • Phishing and fraud: the make-believe industry
Virus Bulletin 05 2013
Subscribe now!

Virus Bulletin currently has 227,267 registered users.